Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/b7YaVm5o357DpCoP5BPxzEnaHYs.roa
File: b7YaVm5o357DpCoP5BPxzEnaHYs.roa (raw, json)
Hash identifier: 1Soes5RPKxU/dCW4RoxgiyErb9eortJg8pLwRgKjjn0=
Subject key identifier: 6F:B6:1A:56:6E:68:DF:9E:C3:A4:2A:0F:E4:13:F1:CC:49:DA:1D:8B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0187454A114C73FEC5D5812E92CFB856217E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/b7YaVm5o357DpCoP5BPxzEnaHYs.roa
Signing time: Mon 03 Apr 2023 04:04:54 +0000
ROA not before: Mon 03 Apr 2023 04:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 62.76.235.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:45:4a:11:4c:73:fe:c5:d5:81:2e:92:cf:b8:56:21:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 3 04:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fb61a566e68df9ec3a42a0fe413f1cc49da1d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:cb:f2:31:f5:ac:0b:8f:a3:2f:48:2e:38:
13:ef:2e:85:41:7a:93:4f:f2:db:37:59:3a:42:ce:
de:5d:63:ee:c3:80:34:03:a6:6b:92:02:8d:ee:4a:
0b:d8:1c:ec:7e:3b:b2:00:cf:95:20:6b:6f:d7:7c:
67:f8:13:39:80:07:58:7a:ff:ec:8e:72:26:a1:91:
21:41:61:1d:b0:7c:cb:1d:34:26:22:66:40:27:b0:
8c:d9:ba:91:06:db:a2:28:9f:25:e9:ef:5c:66:62:
72:0e:fd:44:c5:4a:5a:95:53:74:20:2e:31:c6:76:
3a:4d:1a:f6:9b:fe:22:d1:58:56:71:9d:b1:3d:eb:
d7:21:91:9d:48:72:c0:4b:2b:be:78:9b:a9:ad:a1:
37:0e:28:e1:2b:12:d9:5c:a5:ef:f7:d7:4d:15:8a:
9b:38:46:a1:b9:79:e8:3f:72:9e:52:36:fb:c1:fc:
48:45:e9:c1:25:3c:02:39:96:c3:19:c2:27:1d:40:
64:57:62:1a:c6:e0:b4:d5:c3:ed:7b:f9:22:09:d7:
71:b9:bb:9a:39:28:37:29:a1:1a:c7:a9:61:bb:de:
eb:16:f1:91:58:98:ff:81:e9:cc:08:a9:7b:0c:35:
4a:a3:da:a1:ea:1e:4e:ee:ff:f8:b7:91:62:42:8c:
d0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B6:1A:56:6E:68:DF:9E:C3:A4:2A:0F:E4:13:F1:CC:49:DA:1D:8B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/b7YaVm5o357DpCoP5BPxzEnaHYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.235.0/24
194.87.36.0/24
Signature Algorithm: sha256WithRSAEncryption
57:6a:5f:f8:7e:a3:be:12:b7:5d:45:ec:ae:7d:15:f8:95:8a:
df:7e:f7:bb:b4:70:a9:10:43:0f:7d:7e:5d:f6:27:dc:40:e3:
e7:43:e8:e7:fa:3c:8e:7c:99:6d:35:d4:2e:a7:7e:d5:30:1d:
3b:87:ae:73:20:d9:60:6e:55:ec:5b:67:07:71:64:0c:0a:99:
b9:df:65:86:a3:1d:0d:78:1f:93:23:10:b5:1f:13:99:31:8d:
1d:11:bd:f3:03:ac:68:54:b6:e4:90:c4:e4:d8:50:e9:3c:ea:
f5:f9:91:67:f8:10:c4:0d:5e:ea:e5:9b:e2:05:3b:8f:37:ed:
2a:de:bc:a4:c4:89:20:fe:27:7c:89:30:95:6f:80:ee:9b:3b:
f9:fb:8c:5a:2a:f9:88:d3:5f:8e:b4:cc:d1:8f:2c:7d:d7:73:
10:86:d7:c2:1f:7c:70:c6:fd:e6:66:9c:e1:6b:0e:8a:53:59:
c8:f1:c6:b4:8f:90:6a:96:d7:6d:64:5e:ad:89:ee:75:88:dd:
31:f2:2e:f2:f0:91:1b:1f:54:2f:83:f4:f4:33:5c:05:13:0f:
ea:9e:5e:23:af:64:28:05:4b:13:6e:f2:d3:fa:99:90:70:68:
fd:ac:45:a0:2d:85:f5:05:af:d7:2d:1d:7c:88:6b:7f:65:d2:
25:97:7b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-ams.rpki-client.org